Discover how the Devil-Traff bulk SMS platform fuels phishing attacks with spoofing and automation.

Discover how PhishWP, a malicious WordPress plugin, turns trusted sites into phishing traps and how to protect yourself with Varonis.

Learn new, advanced phishing tactics being used by attackers and how your organization can combat them.

Varonis discovered a vulnerability (CVE-2024-10979) in the Postgres trusted language extension PL/Perl that allows setting arbitrary environment variables in PostgreSQL session processes.

Discover how GoIssue targets GitHub users, posing significant risks to developers and organizations.

The new organizational messages feature for Microsoft 365 enhances how IT and security teams communicate with users at scale, but also generates risks.

A series of vulnerabilities in OpenPrinting CUPS Software indicates an attack vector for RCE, one of the worst possible consequences for a vulnerability.

Varonis Threat Labs uncovered a vulnerability in Salesforce's public link feature that threat actors could exploit to retrieve sensitive data.

Discover real-world examples of remote monitoring and management (RMM) tool exploits and how to protect your organization from these attacks.

A critical vulnerability in OpenSSH's server, dubbed 'regreSSHion,' raises the risk of remote code execution with root privileges.

Recent data breaches of prominent Snowflake cloud customers highlight the risks of compromised cloud storage accounts.

Dropbox Sign's recent data breach highlights how non-human identities are driving more profound breaches.